Bird
0
0

In an IAM role trust policy JSON, which key is used to specify the AWS account or service that can assume the role?

easy📝 Syntax Q3 of 15
AWS - Identity and Access Management
In an IAM role trust policy JSON, which key is used to specify the AWS account or service that can assume the role?
A"Condition"
B"Action"
C"Resource"
D"Principal"
Step-by-Step Solution
Solution:

  1. Step 1: Identify trust policy structure

    The trust policy defines who can assume the role using the "Principal" element.

  2. Step 2: Understand other keys

    "Action" specifies the allowed actions, "Resource" is not used in trust policies, and "Condition" adds constraints.

  3. Final Answer:

    "Principal" -> Option D

  4. Quick Check:

    Trust policy's "Principal" defines trusted entity [OK]
Quick Trick: "Principal" key defines who can assume the role [OK]
Common Mistakes:
MISTAKES
  • Using "Resource" instead of "Principal" in trust policy
  • Confusing "Action" with trusted entity
  • Omitting the "Principal" key

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
AWS CLI - Basic CLI commands (s3, ec2) - Quiz 4medium AWS CLI - CLI scripting basics - Quiz 6medium EC2 Fundamentals - Launching an EC2 instance - Quiz 14medium Identity and Access Management - IAM best practices - Quiz 12easy S3 Fundamentals - Why S3 matters for object storage - Quiz 6medium Security Groups and Network ACLs - Stateless behavior of NACLs - Quiz 8hard Security Groups and Network ACLs - Default security group behavior - Quiz 14medium VPC Fundamentals - Route tables configuration - Quiz 9hard VPC Fundamentals - NAT Gateway for private subnet internet - Quiz 12easy VPC Fundamentals - Default VPC overview - Quiz 8hard